cve/2018/CVE-2018-9055.md

CVE-2018-9055

Description

JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_firstone in libjasper/jpc/jpc_math.c.

POC

Reference

• https://github.com/mdadams/jasper/issues/172
• https://github.com/mdadams/jasper/issues/172
• https://www.oracle.com/security-alerts/cpuapr2020.html
• https://www.oracle.com/security-alerts/cpuapr2020.html

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/andir/nixos-issue-db-example
• https://github.com/xiaoqx/pocs